(19) 



Europaisches Patentamt 
European Patent Office 
Office europeen des brevets 



II 



(12) 



(43) Date of publication: 

21.04.1999 Bulletin 1999/16 

(21) Application number: 98308182.9 

(22) Date of filing: 08.10.1998 



(id EP 0 910 003 

EUROPEAN PATENT APPLICATION 

(51) Int CI. 6 : G06F 1/00 



A2 



(84) Designated Contracting States: 


(72) Inventors: 


AT BE CH CY DE DK ES Fl FR GB GR IE IT LI LU 


• Kawamura, Ham mi, c/o Sony Corporation 


MC NL PT SE 


Tokyo (JP) 


Designated Extension States: 


• Endo, Atsushi, c/o Sony Corporation 


AL LT LV MK RO SI 


Tokyo ( J P) 


(30) Priority: 16.10.1997 JP 299542/97 


(74) Representative: Nicholls, Michael John 




J.A. KEMP & CO. 


(71) Applicant: SONY CORPORATION 


14, South Square 


Tokyo 141 (JP) 


Gray's Inn 




London WC1R 5LX (GB) 
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(54) Information processing 
medium 



(57) An Open Descriptor demanding an access right 
is transmitted from a personal computer to a DVD play- 
er. In response to this demand, the DVD player transmits 
either an Accept response or a Reject response. Upon 
receiving the Accept response, the personal computer 
transmits a Write Descriptor. The Write Descriptor indi- 
cates an instruction that data (da) having a data length 



(le) is written (AuthDe) into an address (Add) of a sender 
(SD). Upon receiving this Write Descriptor, the DVD 
player 1 transmits the Accept Write Descriptor indicating 
that the writing instruction has been accepted. Thus, in 
an authentication protocol, data is transmitted in accord- 
ance with the size of buffer for use in an electronic ma- 
chine. 
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Description 

[0001] The present invenlion generally relates to an 
information processing apparatus and method and to an 
information processing system and method, more par- 
ticularly, which are suitably used for authentication pro- 
tocols for use in copyright protection. 
[0002] A system has been proposed in which elec- 
tronic machines, such as an audio-visual (AV) machine 
and a personal computer, are interconnected to each 
other via, for example, an IEEE1394 serial bus and 
transmit and receive data. Accordingly, in this type of 
system, a variety of authentication methods for use in 
copyright protection have been proposed. 
[0003] Authentication data usable in the proposed au- 
thentication methods has a size of approximately 16 to 
132 bytes. Some electronic machines, such as AV ma- 
chines, are, however, equipped with only a 32-byte 
transmitting and receiving buffer. Accordingly, authenti- 
cation data having a number of bytes exceeding the ca- 
pacity ol a buffer provided for an AV machine cannot be 
transmitted in one packet, thereby failing to correctly 
perform authentication processing. 
[0004] Accordingly, in view of the above background, 
it is an object of the present invention to correctly per- 
form authentication processing regardless of the buffer 
size of an electronic machine by transmitting authenti- 
cation data together with a data length. 
[0005] In order to achieve the above object, according 
to one aspect of the present invention, there is provided 
an information processing apparatus for performing au- 
thentication processing with an external information 
processing apparatus. The information processing ap- 
paratus includes storage means for storing authentica- 
tion data. Writing means writes into the storage means 
authentication data transmitted together with a length of 
the authentication data from the external information 
processing apparatus in response to a write demand 
from the external information processing apparatus. Re- 
jection means rejects a read demand for reading the au- 
thentication data stored in the storage means from the 
external information processing apparatus. Processing 
means performs authentication processing by using the 
authentication data stored in the storage means. 
[0006] According to another aspect of the present in- 
vention, there is provided an information processing ap- 
paratus for performing authentication processing with 
an external information processing apparatus. The in- 
formation processing apparatus includes an authentica- 
tion descriptor for storing authentication data. Authenti- 
cation data transmitted with a length of the authentica- 
tion data from the external information processing ap- 
paratus is written into the authentication descriptor in 
response to a write demand from the external informa- 
tion processing apparatus, and a read demand for read- 
ing the authentication data stored in the authentication 
descriptor from the external information processing ap- 
paratus is rejected, whereby authentication processing 



is performed by using the authentication data stored in 
the authentication descriptor. 

[0007] According to still another aspect of the present 
invention, there is provided an information processing 
5 method for use in an information processing apparatus 
which includes a storage unit and which performs au- 
thentication processing with an external information 
processing apparatus. The information processing 
method includes the steps of: writing into the storage 
10 unit authentication data transmitted together with a 
length of the authentication data from the external infor- 
mation processing apparatus in response to a write de- 
mand from the external information processing appara- 
tus; rejecting a read demand for reading the authentica- 
15 tion data stored in the storage unit from the external in- 
formation processing apparatus; and performing au- 
thentication processing by using the authentication data 
stored in the storage unit. 

[0008] According to a further aspect of the present in- 
venlion, there is provided an information processing 
method for use in an information processing apparatus 
which includes an authentication descriptor and which 
performs authentication processing with an external in- 
formation processing apparatus. The information 
processing method including the steps of: writing into 
the authentication descriptor authentication data trans- 
mitted with a length of the authentication data from the 
external information processing apparatus in response 
to a write descriptor command, which serves as a write 
demand, from the external information processing ap- 
paratus; rejecting a read open command or a read de- 
scriptor command, which serves as a read demand, for 
reading the authentication data stored in the authenti- 
cation descriptor from the external information process- 
ing apparatus; and performing authentication process- 
ing by using the authentication data stored in the au- 
thentication descriptor. 

[0009] According to yet another aspect of the present 
invention, there is provided a transmission medium for 
transmitting a computer program for use in an informa- 
tion processing apparatus which includes a storage unit 
and which performs authentication processing with an 
external information processing apparatus. The compu- 
ter program including the steps of: writing into the stor- 
age unit authentication data transmitted together with a 
length of the authentication data from the external infor- 
mation processing apparatus in response to a write de- 
mand from the external information processing appara- 
tus; rejecting a read demand for reading the authentica- 
tion data stored in the storage unit from the external in- 
formation processing apparatus; and performing au- 
thentication processing by using the authentication data 
stored in the storage unit. 

[0010] The invention will be further described by way 
of example with reference to the accompanying draw- 
ings, in which:- 

Fig. 1 is a block diagram illustrating the configura- 
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tion of an information processing system incorpo- 
rating the present invention: 

Fig. 2 is a block diagram illustrating the internal con- 
figuration of a DVD player, a personal computer, 
and a magneto-optical disk unit shown in Fig. 1; 

Fig. 3 is a block diagram illustrating authentication 
processing; 

Fig. 4 is a timing chart illustrating an example of au- 
thentication processing; 

Fig. 5 is a timing chart illustrating another example 
of authentication processing; 

Fig. 6 is a timing chart illustrating still another ex- 
ample of authentication processing; 

Fig. 7 is a liming chart illustrating a further example 
of authentication processing; 

Fig. 6 is a timing chart illustrating a further example 
of authentication processing; 

Fig. 9 is a timing chart illustrating yet another exam- 
ple of authentication processing; 

Fig. 1 0 is a timing chart illustrating a further example 
of authentication processing; 

Fig. 11 is a timing chart illustrating a detailed data 
transmitting and receiving operation; 

Fig. 12 illustrates an authentication Descriptor for 
use in the AV/C command; 

Fig. 1 3 is a flow chart illustrating the processing ex- 
ecuted by a source; 

Fig. 14 is a timing chart illustrating another detailed 
data transmitting and receiving operation: 

Fig. 1 5 is a timing chart illustrating another example 
of authentication processing; 

Fig. 16 is a timing chart illustrating still another ex- 
ample of authentication processing; 

Fig. 1 7 is a timing chart illustrating a further example 
of authentication processing; and 

Fig. 18 is a timing chart illustrating yet another ex- 
ample of authentication processing. 

[0011] Before providing a detailed description of an 
embodiment of the present invention, in order to clarify 
the relationship between the respective means set forth 



in claims and the following embodiment, the features of 
the present invention are described below by adding the 
corresponding elements of the embodiment (by way of 
example only) in parentheses to the respective means. 
s The following description is not, however, intended to 
restrict the means set forth in claims to the elements de- 
scribed below. 

[0012] An information processing apparatus of the 
present invention includes: storage means (for exam- 

10 pie, an EEPROM 27 shown in Fig. 2) for storing authen- 
tication data; writing means (for example, step S261 of 
Fig. 1 3) for writing into the storage means authentication 
data transmitted together with a length of the authenti- 
cation data from an external information processing ap- 

15 paratus in response to a write demand from the external 
information processing apparatus, rejection means (for 
example, step S263 ol Fig. 13) for rejecting a read de- 
mand for reading the authentication data stored in the 
storage means from the external information processing 

20 apparatus; and processing means (for example, step S7 
of Fig. 4) for performing authentication processing by 
using the authentication data stored in the storage 
means. 

[0013] Referring to the block diagram illustrating the 
25 configuration of an information processing system of the 
present invention shown in Fig. 1 , a digital versatile disc 
(DVD) player 1, a personal computer 2, a magneto-op- 
tical disc unit 3, a data broadcast receiver 4, a monitor 
5, and a television receiver 6 are connected to each oth- 
30 er via an IEEE1 394 serial bus 11. 

[0014] Fig. 2 illustrates a more detailed internal con- 
figuration of the DVD player 1 , the personal computer 
2, and the magneto-optical disc unit 3. The DVD player 
1 is connected to the IEEE1394 serial bus 11 via an 
35 IEEE1 394 interface 26. A central processing unit (CPU) 
21 executes various types of processing in accordance 
with programs stored in a read only memory (ROM) 22. 
A random access memory (RAM) 23 suitably stores da- 
ta and programs required for processing executed by 
40 the CPU 21 . An operation device 24 is lormed of but- 
tons, switches, and a remote controller, and outputs a 
signal corresponding to an operation performed by the 
user. A drive 25 drives a DVD (disk) (not shown) and 
reproduces the data recorded on the DVD. An electri- 
cs cally erasable programmable read only memory (EEP- 
ROM) 27 stores information (key information in this em- 
bodiment) which needs to be stored even after the DVD 
player 1 is powered off. An internal bus 28 connects the 
above-described elements of the DVD player 1. 
so [001 5] The magneto-optical disc unit 3 has a CPU 31 , 
a ROM 32, a RAM 33, an operation device 34, a drive 
35, an IEEE 1394 interface 36, an EEPROM 37, and an 
internal bus 38. The above-mentioned elements func- 
tion similarly to the counterparts of the DVD player 1 , 
55 except that the drive 35 drives a magneto-optical disc 
(not shown) and records/reproduces data on/from the 
disc, and an explanation thereof is thus omitted. 
[0016] The personal computer 2 is connected to the 
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(EEE1394 bus 11 via an IEEE1394 interface 49. A CPU 
41 executes various types of processing in accordance 
with programs stored in a ROM 42. A RAM 43 suitably 
stores data and programs required for processing exe- 
cuted by the CPU 41. A keyboard 45 and a mouse 46 
are connected to an input/output interface 44 so that a 
signal input through the keyboard 45 or the mouse 46 
is output to the CPU 41. A hard disk drive (HDD) 47 is 
connected to the input/output interface 44. and records/ 
reproduces data and programs on/from the HDD 47. An 
expansion board 4B is attached to the input/output in- 
terface 44 as necessary, thereby making it possible to 
add required functions. Information (various types of key 
information in this embodiment) needed to be retained 
even after power is turned off is stored in an EEPROM 
50. An internal bus 51 , such as a peripheral component 
interconnect (PCI) local bus, connects the above-de- 
scribed elements of the personal computer 2. 
[0017] The internal bus 51 is free for the user. The 
user is thus able to conned a predetermined board to 
the expansion board 48 or create a predetermined soft- 
ware program which runs on the CPU 41 as necessary, 
thereby enabling the user to receive data transmitted via 
the internal bus 51 as necessary. 

[0018] In contrast, in consumer electronics (CE) ap- 
paratuses, such as the DVD player 1 and the magneto- 
optical disc unit 3, the internal bus 28 or 38 is not free 
for the user, and data transmitted through the bus 28 or 
38 cannot be obtained unless a specific modification is 
made. 

[001 9] Authentication processing performed between 
a predetermined source and a predetermined sink is as 
follows. The authentication processing is performed, as 
illustrated in Fig. 3, between firmware 20, which serves 
as one of the software programs stored in the ROM 22 
of a source, for example, the DVD player 1 , and a license 
manager 62, which serves as one of the software pro- 
grams processed by the CPU 41 stored in the ROM 42 
of a sink, for example, the personal computer 2. 
[0020] Fig. 4 illustrates an example of the authentica- 
tion process performed between the source (DVD play- 
er 1 ) and the sink (personal computer 2). The EEPROM 
27 of the DVD player 1 stores a service key 
(service_key) and a function (hash), both of which have 
been supplied to the user of the DVD player 1 from a 
license management agency and privately stored in the 
EEPROM 27 by the user. 

[0021] The service key is used in common in the sys- 
tem formed by the IEEE1394bus 11. The term "system" 
used in this specification indicates an entire system 
formed of a plurality of apparatuses. 
[0022] The hash function is a function that outputs 
fixed length data having 64 bits or 128 bits with respect 
to arbitrary length data. According to this function, when 
y(=hash(x)) is provided, it is difficult to find x. It is also 
difficult to obtain a combination of xl and x2 to satisfy 
the condition of hash(x1 ) = hash(x2). As typical one-way 
hash functions, MD5 and SHA are known. The one-way 



hash functions are discussed in detail in Applied Cryp- 
tography (Second Edition), Wiley by Bruce Schneier. 
[0023] The personal computer 2, which serves as a 
sink, privately stores in the EEPROM 50 an identification 

5 number (ID) unique to the personal computer 2 and a 
license key (license_key). The license key is obtained 
by applying the hash function to concatenated (n + m)- 
bil data (IDIIservice_key) formed of an n-bit ID and an 
m-bil service key. Namely, the license key is expressed 

10 by the following equation. 

Iicense_key = hash(IDIIservice_key) As the ID, 
node_unique_ID specified in the standards of the 
IEEE 1394 serial bus 11 may be used. The 
node_unique_ID is unique to each computer regardless 

15 of the manufacturer. 

[0024] Relerring to Fig. 4, in step S1 , the license man- 
ager 62 of the personal computer 2 controls the 
IEEE1 394 interface 49 and makes an auth (authentica- 
tion) request to the DVD player 1 via the IEEE1 394 serial 

20 bus 11. The firmware 20 of the DVD player 1 receives 
the auth request in step S2 and makes an ID (identifi- 
cation) request in step S3. The personal computer 2 re- 
ceives the ID request in step S4 and transmits the ID 
recorded on the EEPROM 50 in step S5. A detailed ex- 

2S pianation of the ID transmission will be given later with 
reference to Fig. 11. The DVD player 1 receives the ID 
in step S6. In step S7, the firmware 20 of the DVD player 

1 concatenates the ID transmitted from the personal 
computer 2 with the service key stored in the EEPROM 

30 27. thereby creating data (IDilservice_key). The hash 
function is then applied to the data (IDIIservice_key), 
thereby forming a key Ik, as expressed by the following 
expression. 

Ik= hash(IDIIservice_key) 

35 [0025] In step S8, the firmware 20 creates a crypto- 
graphic key sk, which is shared in the DVD player 1 and 
the personal computer 2 as a session key. 
[0026] In step S9, a random number r is created, and 
in step S1 0, the firmware 20 encrypts concatenated data 

40 rllsk of the cryptographic key sk created in step S8 and 
the random number r created in step S9 by using the 
key Ik created in step S7, thereby acquiring the encrypt- 
ed data (encrypted key) e , as expressed by the following 
equation: 

4 $ e = Enc(lk, rllsk) where Enc(A, B) represents a 

common key cryptography system in which the data B 
is encrypted by using the key A. 

[0027] Subsequently, in step S11, the lirmware 20 of 
the DVD player 1 transmits the encrypted data e created 
so in step S10tothe personal computer 2. Namely, the en- 
crypted data e is transmitted to the personal computer 

2 from the IEEE1394 interface 26 of the DVD player 1 
via the IEEE1 394 bus 11 . In stop S12, the porsonal com- 
puter 2 receives the encrypted data e via the I EEE 1 394 

55 interface 49. In step S13, the license manager 62 then 
decodes the encrypted data e by using the license key 
stored in the EEPROM 50 according to the following 
equation, thereby obtaining the concatenated rllsk': 
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r'llsk' = Dec(license_key, e) where Dec(A, B) rep- 
resents the common key cryptography system in which 
the data B is decoded by using the key A. 
[0028] As an algorithm for encrypting data used in the 
common key cryptography system, the Data Encryption 
Standard (DES) algorithm is known. The common key 
crytography system is discussed in detail in the above- 
described Applied Cryptography (Second Edition). 
[0029] The key Ik created by the DVD player 1 in step 
S7 coincides with the license key (license_key) stored 
in the EEPROM 50 of the personal computer 2. Namely, 
the following equation holds true. 

Ik = license_key 
[0030] Accordingly, the key sk' decoded by the per- 
sonal computer 2 in step S1 3 is identical to the crypto- 
graphic key sk created by the DVD player 1 in step S6. 
Namely, the lollowing equation holds true. 

sk' = sk 

[0031] In this manner, the same key sk and sk' can be 
shared by the DVD player 1 (source) and the personal 
computer 2 (sink). Accordingly, the key sk may be used 
as a cryptographic key, or a pseudo-random number 
may be created based on the key sk by each of the DVD 
player 1 and the personal computer 2, and the resulting 
key may be used as a cryptographic key. 
[0032] As discussed above, since the license key is 
formed based on an ID unique to each computer and a 
service key corresponding to the information to be pro- 
vided, it is impossible for another computer to create the 
key sk or sk'. Additionally, computers which are not au- 
thorized by the license management agency do not 
have the above-mentioned license key and are thus un- 
able to create the key sk or sk 1 . Consequently, when the 
DVD player 1 encrypts reproducing data by using the 
cryptographic key sk and transmits the encrypted data 
to the personal computer 2, the authorized personal 
computer 2, which has obtained the license key legally 
provided with the cryptographic key sk', is able to de- 
code the encrypted reproducing data transmitted from 
the DVD player 1 . In contrast, the unauthorized personal 
computer 2 without the cryptographic key sk' is unable 
to decode the encrypted reproducing data. In other 
words, only authorized computers are able to create the 
common cryptographic key sk or sk' to make it possible 
to perform authentication. 

[0033] Even if the license key of one personal com- 
puter 2 is stolen, it is impossible for another computer 
to decode the encrypted data transmitted from the DVD 
player 1 by using the above license key since an ID is 
unique to each computer. Security is thus enhanced. 
[0034] Fig. 5 is a flow chart illustrating another exam- 
ple of authentication processing. -Processing in steps 
S21 through S26 is similar to that in stops S1 through 
S6 of Fig. 4, and an explanation thereof will thus be omtl- 
ted. 

[0035] Upon completing the receiving of ID data in 
step S26. the process proceeds to step S27 in which the 
key 1k_0 is first created. More specifically, the ID trans- 



mitted from the personal computer 2 is concatenated 
with service_key stored in the EEPROM 27 of the DVD 
player 1, thereby forming the concatenated data 
(IDIIservice_key). The hash function is then applied to 

s the concatenated data to create the key 1 k .0. Subse- 
quently, in step S28, the hash function is applied g 
number of times to the created 1k_0 as expressed by 
the following equation, thereby forming the key 1 k_g: 
lk_g = H^lkJ)) where H A g represents that the 

io hash function is applied g number of times. 

[0036] In step S29, the hash function is applied to the 
lk_g to form encrypted data m. In step S30, the random 
number r is created, and in step S31, the random 
number r and the encrypted data m created in step S29 

is are transmitted to the personal computer 2. 

[0037] In step S32, the personal computer 2 receives 
the random number r and the encrypted data m. In step 
S33. LK_g is created as follows. The license key 
(license_key) stored in the EEPROM 50 is first set to be 

20 LK_i. The hash function is then applied lo LK_i, and the 
resulting H(LK_i) is compared with the encrypted data 
m. If the condition of H(LK_i) = m is not satisfied, H(LK_i) 
is newly substituted into LK_i. Subsequently, the hash 
function is applied to the newly created LK_i to form H 

25 (LK_i). It is then determined whether the nowly formed 
H(LK_i) is equal to the encrypted data m. In this manner, 
the aforementioned processing is repeated until the 
condition of H(LK_i) - m becomes true, the upper max- 
imum number of processing is, however, determined to 

30 be. for example, 100 times, and in excess of the maxi- 
mum number of times LK_g is not created. The process- 
ing is thus ended. 

[0038] Conversely, if the condition of H(LK„i) = m 
holds true, LK_i is set to be LK_g. The process then pro- 

35 ceeds to step S34 in which the cryptographic key sk is 
formed by applying the Keyedhash function. to the ran- 
dom number r, as expressed by the following equation: 
sk = Keyedhash(LK_g, r) where the Keyedhash 
function is a hash function provided with a key, and 

40 Keyedhash(LK_g : r) indicates that r is input into the hash 
function having the key LK_g. 

[0039] In step S35, the DVD player 1 applies the 
Keyedhash function having the key lk_g to the random 
number r, thereby creating the cryptographic key sk. 
45 [0040] Fig. 6 is a flow chart illustrating still another ex- 
ample of authentication processing. Processing in steps 
S51 through S56 is similar to that in steps S1 through 
S6 of Fig. 4, and an explanation thereof will thus be omit- 
ted. 

50 [0041] Upon completion of receiving the ID data in 
step S56, the process proceeds to step S57 in which the 
firmware 20 of the DVD player 1 creates a random 
number Ra. In step S58, the random number Ra is then 
transmitted to the personal computer 2. The personal 

55 computer 2 then receives the random number Ra in step 
S59. and creates a random number Rb in step S60. In 
step S61 , the created random number Rb is concate- 
nated with the transmitted random number Ra, thereby 
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obtaining data M1. In step S62, the personal computer 
2 encrypts the data M1 by using the license key 
(license_key) to form encrypted data X. In step S63 : the 
data X is then transmitted to the DVD player 1 . 
[0042] The DVD player 1 receives the data X in step 
S64. In step S65, the DVD player 1 concatenates the ID 
ot the personal computer 2 with service_key stored in 
the EE PROM 27. thereby forming data 
(IDIIservice_key). The hash function is then applied to 
the above-mentioned concatenated data to create the 
key Ik, as expressed by the following equation. 

Ik = H(IDIIservice_key) 
[0043] In step S66, the firmware 20 decodes the re- 
ceived encrypted data X by using the key Ik, as ex- 
pressed by the following equation, thereby obtaining the 
following concatenated data. 

Ra'IIRb' = Dec (Ik, X) 
[0044] It is then determined in step S67 whether the 
random number Ra created in step S57 is equal to the 
random number Ra' decoded in step S66, i.e., whether 
Ra = Ra'. If it is found in step S67 that the condition Ra 
= Ra' is not satisfied, the processing is terminated. Con- 
versely, if it is found in step S67 that the condition Ra ^ 
Ra' is satisfied, the process proceeds to step S68 in 
which the cryptographic key sk is created. In step S69, 
Ra, Ra', and sk are concatenated with each otherto form 
data (RallRa'llsk) which is then set to be data M2. In 
step S70, the data M2 is encrypted by using the key Ik, 
thereby forming encrypted data Y. 
[0045] I n step S7 1 , the encrypted data Y is then trans- 
mitted to the personal computer 2. The personal com- 
puter 2 receives the data Y in step S72 : and decodes it 
by using the key license_key in step S73, thereby cre- 
ating concatenated data (Ra"IIRb"llsk'). A determination 
is then made in step S74 of whether the condition Rb = 
Rb" holds true. If it is found in step S74 that Rb is not 
equal to Rb", the cryptographic key sk' is abandoned, 
and the processing is ended. In contrast, if it is found in 
step S74 that Rb is equal to Rb", the process proceeds 
to step S75 in which the cryptographic key sk' is accept- 
ed as the cryptographic key sk. 

[0046] Fig. 7 is a flow chart illustrating a further exam- 
ple of authentication processing. Processing in steps 
S91 through S99 is similar to that of steps S21 through 
S29 of Fig. 5, and an explanation thereof will thus be 
omitted. 

[0047] The firmware 20 of the DVD player 1 creates 
a random number Ra in step SI 00, and transmits the 
random number Ra and the data m to the personal com- 
puter 2 in step S101 . The personal computer 2 receives 
Ra and m in step S102, and creates LK_g in step S100. 
Processing in step S1 03 is similar to that in step S33 of 
Fig. 5, and an explanation thereof will thus bo omitted. 
Processing in steps S104 through S118 is substantially 
similar to that in steps S60 through S75 of Fig. 6, and 
an explanation thereof will thus be omitted, except that 
processing in step S65 of Fig. 6 corresponds to that in 
step S98 of Fig. 7. 



[0048] Fig. 9 is a flow chart illustrating a further exam- 
ple of authentication processing. Processing in sleps in 
S1 31 through S1 36 is similar to that in steps Si through 
S6 of Fig. 4. and an explanation thereof will thus be omit- 
s ted. 

[0049] Upon completion of receiving the ID data in 
step Si 36. the process proceeds to step Si 37 in which 
the DVD player 1 creates a time stamp T As the time 
stamp T, a 32-bit CYCLE_TIME register value specified 
10 in the IEEE1394 standards may be used. In step S133. 
the created time stamp T is then transmitted to the per- 
sonal computer 2. 

[0050] Upon receiving the time stamp T in step S1 39, 
the personal computer 2 checks the validity of the time 

is stamp T in step S140. The above validity check is per- 
formed by comparing the CYCLE_TIME register value 
possessed by the personal computer 2 with the time 
stamp T If the difference between the two values is 100 
milliseconds or less, it is determined that the time stamp 

20 j is valid. If Ihe difference belween the two values ex- 
ceeds 100 milliseconds, it is determined that the time 
stamp T is invalid. Upon determining that the time stamp 
T is invalid, it is determined that the DVD player 1 is an 
unauthorized apparatus, and the processing is ended. 

25 [0051] If it is found in step S140 that the DVD player 
1 is an authorized apparatus, the process proceeds to 
step S141 in which the Keyedhash function having the 
key license_key is applied to the time stamp T received 
in step S139, thereby forming encrypted data X. In step 

30 S142, the encrypted data X is transmitted to the DVD 
player 1. Upon receiving the data X in step S143, the 
DVD player 1 creates the key Ik in step S144. More spe- 
cifically, the key Ik is created as follows. The ID of the 
personal computer 2 received in step S136 is concate- 

-35 nated with the service_key stored in the EEPROM 27 of 
the DVD player 1, thereby forming data 
(IDIIservice_key). The hash function is then applied to 
the data (IDIIservice_key), thereby forming the key Ik. 
In step S145, the Keyedhash function having the key Ik 

40 is applied to the time stamp T created in step SI 37, 
thereby forming encrypted data X'. 
[0052] A determination is then made in step S146 of 
whether the encrypted data X received in step S143 is 
equal to the encrypted data X' formed in step S145, i.e., 

45 whether X = X'. If it is found in step SI 46 that the con- 
dition X = X' is not satisfied, in other words, that the DVD 
player 1 is an unauthorized apparatus, the processing 
is terminated, tf il is found in slep S146 that Ihe condition 
X = X' is satisfied, the process proceeds to step S147 

so in which the DVD player 1 creales a random number r. 
In step S1 48, the created random number r is then trans- 
mitted to the personal computer 2. 
[0053] In step S149, the personal computer 2 re- 
ceives the random number r. In step S150, the Keyed- 

55 hash function having the key license_key is applied to 
the received random number r, thereby creating a cryp- 
tographic key Meanwhile, in step SI 51 , the DVD player 
1 applies the Keyedhash function having the key Ik cre- 
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ated in step S144 to the random number r created in 
step S147, thereby forming a cryptographic key 
[0054] Fig. 9 is a flow chart illustrating yet another ex- 
ample of authentication processing. Processing in steps 
S17V through SI 79 is similar to that in steps S21 
through S29 of Fig. 5, and an explanation thereof will 
thus be omitted. The time stamp T is created in step 
S 180 in a manner similar to step SI 37 of Fig. 8, and an 
explanation thereof will thus be omitted. 
[0055] In step S181, the DVD player 1 transmits the 
encrypted data m formed in step S179 and the time 
stamp T created in step S180to the personal computer 
2. Upon receiving m and T in step S182, the personal 
computer 2 checks the validity of the received time 
stamp T in step S1 83. If it is found in step S1 83 that the 
time stamp T is valid, the process proceeds to step 
S184. If it is found in step S163 that the time stamp T is 
invalid, the processing is terminated. 
[0056] I n step S1 84, the key LK_g is created in a man- 
ner similar lo (he processing in step S33 of Fig. 5, and 
an explanation thereof will thus be omitted. In step S1 85, 
the time stamp T received in step S182 is encrypted by 
using the created key LK_g, thereby acquiring the en- 
crypted data X. In step S186, the encrypted data X is 
transmitted to the DVD player 1 . Upon receiving the data 
X in step S187, in step S188, the DVD player 1 encrypts 
the time stamp T created in step S180 by using the key 
lk_g created in step S178, thereby obtaining the en- 
crypted data X'. 

[0057] It is then determined in step S189 whether the 
condition X = X' holds true. If it is found in step S1 89 that 
X is not equal to X\ the processing is terminated. On the 
other hand, if it is found in step S1B9 that X is equal to 
X', the process proceeds to step S1 90 in which the DVD 
player 1 creates a random number r. In step S191 , the 
random number r is transmitted to the personal compu- 
ter 2. 

[0058] Upon receiving the random number r in step 
S1 92, in step S1 93, the personal computer 2 applies the 
Keyedhash function having the key LK_g to the random 
number r, thereby forming a cryptographic key. Mean- 
while, in step S1 94. the DVD player 1 applies the Keyed- 
hash function having the key lk_g created in step S17B 
to the random number r created in step S190, thereby 
forming a cryptographic key 

[0059] Fig. 10 is a flow chart illustrating a further ex- 
ample of authentication processing. Processing in steps 
S211 through S21 9 is similar lo lhal in steps S21 through 
S29 of Fig. 5, and an explanation thereof will thus be 
omitted. 

[0060] In step S220, the DVD player 1 transmits the 
data m created in step S219 to the personal computer 
2. Upon receiving m in step S221 , the personal compu- 
ter 2 creates LK_g in step S222 in a manner similar to 
step S33 of Fig. 5, and an explanation thereof will thus 
be omitted. 

[0061] The random number Rb is then created in step 
S223, and the time stamp Tb is created in step S224. In 



step S225 : the random number Rb is concatenated with 
the time stamp Tb, thereby forming data (RbllTb), which 
is set to be data M1 . Subsequently, in step S226. the 
data M1 is encrypted by using the key LK_g created in 
5 step S222, thereby acquiring the encrypted data X. In 
step S227, the personal computer 2 then transmits the 
data X to the DVD player 1 . 

[0062] Upon receiving the data X in step S22B, the 
DVD player 1 decodes the data X by using the key lk_g 

io to obtain the concatenated data (Rb'IITb') of Rb' and Tb' 
in step S229. In step S230, a check is made of the va- 
lidity of Tb'. If it is found in step S230 that Tb' is invalid, 
the processing is terminated. Conversely, if it is found 
in step S230 that Tb 1 is valid, the process proceeds to 

is step S231 in which the time stamp Ta is created. In step 
S232, cryptographic keys KsO and Kc are created. In 
step S233 : the DVD player 1 concatenates Ta, KsO, and 
Kc (TallKsOllKc) with each other, which is set to be M2. 
Subsequently, in step S234, M2 is encrypted by using 

20 the key lk_g lo form the encrypled dala Y. In slep S235, 
the encrypted data Y is transmitted to the personal com- 
puter 2. Upon receiving the data Y in step S236, the per- 
sonal computer 2 decodes it by using the key LK_g in 
step S237, thereby obtaining concatenated data 

25 (Ta'llKsO'MKc'). 

[0063] A description is now given below with refer- 
ence to the flowchart in Fig. 11 of the detailed transmit- 
ting operation of an ID and encrypted data X (hereinafter 
referred to as "authentication data" if necessary) from 

30 the personal computer 2 (sink) to the DVD player 1 
(source) according to the aforementioned authentica- 
tion method. In this example, the Descriptor of the AV/ 
C command of the IEEE1 394 bus is used. Namely each 
of the DVD player 1 and the personal computer 2 has 

35 its own authentication Descriptor for writing authentica- 
tion data into the EEPROM 27 (or the RAM 23) or the 
EEPROM 50 (or the RAM 43). Before discussing the 
processing of Fig. 11, the AV/C command format is ex- 
plained. 

40 [0064] Fig. 1 2 illustrates the command format and the 
response format of the AV/C command. The command 
format is formed of a command type, which includes an 
operation command type and a status enquiry type, a 
destination of the command, and an operation code 

45 (OPC). The OPC has an Open Descriptor, a Write De- 
scriptor, and a Read Descriptor, which respectively de- 
mands access, writing, and reading. The type of De- 
scriptor is specified in the Operand of the Open Descrip- 
tor. As the content to be processed, Read Open (com- 

so rmand for obtaining the right to read access), Write Open 
(command for obtaining the right to write access), or 
Close (command for closing) is also designated in Op- 
erand of Open Descriptor. Specified in the Operand of 
the Write Descriptor are not only the type of Descriptor, 

55 but also a write address, a write data length, and write 
data. Similarly, the response format is formed of a re- 
sponse code, a sender, an OPC, and Operand. The re- 
sponse code includes Accept, Reject, and not imple- 
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mented (unable to provide corresponding processing). 
[0065] The process represented by the flow chart of 
Fig. 11 is performed in cases, for example, where the 
personal computer 2 receives an ID request from the 
DVD player 1 in step S4 of Fig. 4 and transmits the ID 
in step S5. In step S251 , the personal computer 2 trans- 
mits an Open Descriptor (SD. AuthDe, wo) command to 
the DVD player 1 from the IEEE1394 bus 11 via the 
IEEE1394 interface 49. SD stands for a source device 
and represents the destination of the command. AuthDe 
stands for Authentication Descriptor and indicates that 
the descriptor to be processed (opened) is Authentica- 
tion Descriptor, wo stands for Write Open. In short, Open 
Descriptor (A, B, C) indicates a command which re- 
quests the Descriptor B of the electronic machine A to 
perform the operation C. 

[0066] The DVD player 1 receives the Open Descrip- 
tor command in step S252, and transmits, for example, 
an Accept response in step S253. If the DVD player 1 
is communicaling with another electronic machine when 
receiving the Open Descriptor command, it transmits a 
Reject response to the personal computer 2 in step 
S253. Upon receiving the Reject response in step S254, 
the personal computer 2 repeats the aforementioned 
processing starting from stop S251 . In this example, the 
personal computer 2 receives the Accept response in 
step S254, and transmits a Write Descriptor (SD, Auth- 
De, Add, le. da) command in step S255. Add represents 
Address, which is used for writing authentication De- 
scriptor data, le indicates the data length of the write 
data, and da indicates the write data. In short, Write De- 
scriptor (A, B, C, D, E) represents that data E having a 
data length D is written into the address C of the descrip- 
tor B of the electronic machine A. 
[0067] The DVD player 1 receives the Write Descrip- 
tor command in step S256, and transmits an Accept 
Write Descriptor (sink, AuthDe, Add, le) response in 
step S257. The Accept Write Descriptor (A, B, C, D) re- 
sponse indicates that the DVD player 1 has acknowl- 
edged that the electronic machine A is accepted to write 
the data having the data length D into the address C of 
Descriptor B. The data length (le) is decided by the per- 
sonal computer 2 and may be set to be, for example, 10 
or 20 bytes in accordance with the buffer size of the des- 
tination (the DVD player 1 in this case). 
[0068] In step S258, the personal computer 2 re- 
ceives the Accept Write Descriptor. According to the 
aforementioned process, it is confirmed that the ID hav- 
ing, for example, 10 bytes, has been transmitted and 
written into authentication Descriptor of the DVD player 
1. The processing from step S255 to step S258 is re- 
peated for the remaining amount of ID until the whole 
data having a required length has been transmitted. Up- 
on receiving the whole data by the DVD player 1, the 
processing of the flow chart of Fig. 11 is ended, and the 
process further proceeds to the following step, for ex- 
ample, step S7 of Fig. 4. 

[0069] Processing similar to that shown in Fig. 11 is 



executed when the DVD player 1 writes encrypted data 
e into the authentication Descriptor of the personal com- 
puter 2 in step S11 of Fig. 4. This processing will be de- 
scribed later with reference to Fig. 14. 

5 [0070] The aforementioned processing shown in Fig. 
11 may be executed not only for authentication process- 
ing shown in Fig. 4, but also in steps S25 and S31 of 
Fig. 5, steps S55, S58, S63, and S71 of Fig. 6, steps 
S95, S101, S107,andS114of Fig. 7, steps S1 35. SI 33. 

to S142, andS148of Fig. 8, steps S175, S181, S186. and 
S191 of Fig. 9, and steps S215, S220, S227, and S235 
of Fig. 10. 

[0071] The processing executed by the DVD player 1 
(source), beginning from receipt of an Open command 
is to receipt of data, is described in detail below with ref- 
erence to the flow chart in Fig. 13. In step S271 , which 
corresponds to step S252 of Fig. 11, the DVD player 1 
receives an Open command. It is then determined in 
step S272 whether the received Open command indi- 
go cates an authentication Descriptor. 

[0072] If it is found in step S272 that the Open com- 
mand is not an authentication Descriptor, the process 
proceeds to step S264 in which the operation corre- 
sponding to the received command is performed. 
2S [0073] Conversely, if it is found in step S272 that the 
Open command is an authentication Descriptor, the 
process proceeds to step S273. A determination is then 
made in step S273 of whether the received command 
indicates a Read Open command. If the result of step 
30 S273 is yes, the process proceeds to step S263 in which 
the DVD player 1 transmits a "not-implemented" re- 
sponse to the electronic apparatus which has transmit- 
ted the Open command. In other words, in response to 
the Read Open demand for the authentication Descrip- 
35 tor, the DVD player 1 replies to the electronic apparatus 
that such a demand cannot be accepted. This makes it 
possible to reject the Read Open demand for authenti- 
cation Descriptor from other information processing ap- 
paratuses. 

40 [0074] If it is determined in step S273 that the received 
command is not a Read Open command, the process 
proceeds to step S274 in which it is further determined 
whether the received command is a Write Open com- 
mand. If the result of step S274 is no, the process pro- 

45 ceeds to step S275 in which a determination is made of 
whether the received command is Close. If the result of 
the query made in step S275 is no, the process pro- 
ceeds to step S256 in which error handling is performed. 
If it is found in step S275 that the received command 

50 indicates Close, the processing is ended. 

[0075] If it is determined in step S274 that the received 
command is a Write Open command, the process pro- 
ceeds to stop S257 in which an Accept response indi- 
cating that writing of a Descriptor is accepted is trans- 

55 mitted. Step S257 corresponds to step S253 of Fig. 1 1 . 
In reply to the Accept response, the subsequent com- 
mand is received in step S258, which corresponds to 
step S256 of Fig. 11. A determination is then made in 
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step S259 of whether the received command is a Read 
Descriptor. If the result of step S259 is yes, the process 
proceeds to step S263 in which a "not-implemented - re- 
sponse is transmitted, and the processing is completed. 
[0076] If it is found in step S259 that the received com- 
mand is not a Read Descriptor, the process proceeds to 
step S260 in which a determination is further made of 
whether the received command is a Write Descriptor. If 
the result of the query made in step S250 is no, the 
processing is completed. If the result of step S260 is 
yes, the process proceeds to step S261 . In step S261 , 
in response to the demand, the CPU 21 of the DVD play- 
er 1 writes authentication data into the authentication 
Descriptor and transmits an Accept response indicating 
that the processing for the demand has been completed. 
Step S261 corresponds to step S257 of Fig. 11. A de- 
termination is further made in step S262 of whether the 
entirety of the data (for example, the ID data) has been 
received. If the result of step S262 is no. the process 
returns to step S25B in which the processing in step 
S256 and the following steps is repeated. If the result of 
the query made in step S262 is yes, the process is com- 
pleted. 

[0077] A description is now given below with refer- 
ence to the flow chart in Fig. 14 of the transmitting op- 
eration of data, such as a cryptographic key and a ran- 
dom number, from the DVD player 1 (source) to the per- 
sonal computer 2 (sink). The processing shown in Fig. 
1 4 is executed in cases such as those in which the DVD 
player 1 transmits encrypted data e to the personal com- 
puter 2 in step S11 of Fig. 4. 

[0078] The processing in each step shown in the flow 
chart of Fig. 1 4 is substantially similar to the correspond- 
ing processing shown in the flow chart ol Fig. 11, and 
an explanation thereof will thus be omitted since the 
sender and the receiver are merely reversed. For rep- 
resenting the destination of data, however, SD shown 
in Fig. 11 is substituted with a sink in Fig. 14, and the 
sink in Fig. 11 is substituted with SD in Fig. 14. 
[0079] According to the foregoing description, since 
data is transmitted by designating the address and the 
data length, it can be written into the address in accord- 
ance with the size of buffer provided for the electronic 
machine (receiver). 

[0080] The present invention may be applied to au- 
thentication processes illustrated in Figs. 1 5 through 1 8, 
although a detailed description thereof is omitted. 
[0081] Although in the foregoing embodiment the 
DVD player 1 serves as a source and the personal com- 
puter 2 serves as a sink, the functions of these appara- 
tuses may be reversed. 

[0082] The external bus connected to the DVD player 
1 or the personal computer 2 is not restricted to the 
IEEE 1394 bus, and another type of bus may be used. 
The electronic machines may be other than the DVD 
player 1 and the personal computer 2. 
[0083] The computer program implementing the 
aforementioned various commands may be stored in a 



recording medium, such as a magnetic disk or a CD- 
ROM disc, and may be transmitted to the user. Alterna- 
tively, the computer program may be transmitted to the 
user via a transmission medium, such as a network, and 

5 stored in a built-in RAM or a hard disk as required, there- 
by enabling the user to utilize the program. 
[0084] As is seen from the foregoing description, the 
information processing apparatus, the information 
processing method, and the transmission medium of the 

io present invention offer the following advantages. When 
authentication data is transmitted together with a data 
length to the information processing apparatus from an- 
other apparatus, the authentication data is stored in a 
storage unit. However, if a request is made from another 

is apparatus to read the authentication data stored in the 
storage unit, it is rejected. In this manner, authentication 
processing is performed by using the authentication da- 
ta stored in the storage unit, thereby making it possible 
to perform authentication processing regardless of the 

20 size of buffer used in the apparatus. 



Claims 

25 1 . An information processing apparatus for performing 
authentication processing with an external informa- 
tion processing apparatus, said information 
processing apparatus comprising: 

30 storage means for storing authentication data; 

writing means for writing into said storage 
means authentication data transmitted togeth- 
er with a length of the authentication data from 
3$ said external information processing apparatus 

in response to a write demand from said exter- 
nal information processing apparatus; 

rejection means for rejecting a read demand for 
40 reading the authentication data stored in said 

storage means from said external information 
processing apparatus; and 

processing means for perlorming authentica- 
45 tton processing by using the authentication da- 

ta stored in said storage means. 

2. An information processing apparatus according to 
claim 1 , wherein said storage means comprises an 

50 AV/C command descriptor. 

3. An information processing apparatus according to 
claim 1, wherein the write demand or the read de- 
mand is transmitted via an IEEE 1394 serial bus. 



55 

4. An information processing apparatus for performing 
authentication processing with an external informa- 
tion processing apparatus, said information 
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processing apparatus comprising an authentication 
descriptor for storing authentication data, 

wherein authentication data transmitted with a 
length of the authentication data from said ex- s 
ternal information processing apparatus is writ- 
ten into said authentication descriptor in re- 
sponse to a write demand from said external 
information processing apparatus, and a read 
demand for reading the authentication data 10 
stored in said authentication descriptor from 
said external information processing apparatus 
is rejected, whereby authentication processing 
is performed by using the authentication data 
stored in said authentication descriptor ?5 

5. An information processing apparatus according to 
claim 4, wherein said authentication descriptor 
comprises an AV/C command descriptor in compli- 
ance with an IEEE1394 serial bus formal. 20 

6. An information processing apparatus according to 
claim 4, wherein the authentication data comprises 
identification data used for copyright protection. 

25 

7. An information processing method for use in an in- 
formation processing apparatus which comprises a 
storage unit and which performs authentication 
processing with an external information processing 
apparatus, said information processing method 30 
comprising the steps of: 

writing into said storage unit authentication da- 
ta transmitted together with a length of the au- 
thentication data from said external information 35 
processing apparatus in response to a write de- 
mand from said external information process- 
ing apparatus; 

rejecting a read demand for reading the authen- 
tication data stored in said storage unit from 40 
said external information processing appara- 
tus; and 

performing authentication processing by using 
the authentication data stored in said storage 
unit. 45 



write demand, from said external information 
processing apparatus; 

rejecting a read open command or a read de- 
scriptor command, which serves as a read de- 
mand, for reading the authentication data 
stored in said authentication descriptor from 
said external information processing appara- 
tus; and 

performing authentication processing by using 
the authentication data stored in said authenti- 
cation descriptor. 

9. A transmission medium for transmitting a computer 
program for use in an information processing appa- 
ratus which comprises a storage unit and which per- 
forms authentication processing with an external in- 
formation processing apparatus, said computer 
program comprising the steps of: 

writing into said storage unit aulhentication da- 
ta transmitted together with a length of the au- 
thentication data from said external information 
processing apparatus in response to a write de- 
mand from said external information process- 
ing apparatus; 

rejecting a read demand for reading the authen- 
tication data stored in said storage unit from 
said external information processing appara- 
tus; and 

performing authentication processing by using 
the authentication data stored in said storage 
unit. 



8. An information processing method for use in an in- 
formation processing apparatus which comprises 
an authentication descriptor and which performs 
authentication processing with an external informa- so 
tion processing apparatus, said information 
processing method comprising the steps of: 

writing into said authentication descriptor au- 
thentication data transmitted with a length of ss 
the authentication data from said external infor- 
mation processing apparatus in response to a 
write descriptor command, which serves as a 
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